What the vulnerability does

01Description

A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. The highest threat from this vulnerability is system availability.

Key dates

02Disclosure timeline

January 5, 2021 CVE published
August 4, 2024 Record updated